$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce8258d5-b4bd-4d10-8d83-fd38bcbe161d.roa File: ce8258d5-b4bd-4d10-8d83-fd38bcbe161d.roa (raw, json) Hash identifier: h9BmWzSWNiYfBbEhlxii+s1Sn/hCs5tAJvW2l9LcVbo= Subject key identifier: C2:95:F9:7A:73:32:14:5D:92:1D:24:44:07:F2:2B:1B:F1:96:CF:4F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0614B82119AC2BF5D255A80D3133964DFAEC041C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce8258d5-b4bd-4d10-8d83-fd38bcbe161d.roa Signing time: Sun 19 Oct 2025 04:40:13 +0000 ROA not before: Sun 19 Oct 2025 04:40:13 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.238.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:14:b8:21:19:ac:2b:f5:d2:55:a8:0d:31:33:96:4d:fa:ec:04:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 04:40:13 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=b315347a8d04eb175fd46fcb3b47876865c426a9f2091027b5b0471c43697cdc, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:42:3b:35:60:75:22:b8:fa:0d:4b:7a:7d:f2: a3:58:27:2e:29:9c:86:05:9b:f6:25:b9:7b:27:ae: f7:1a:4f:e0:c4:7a:af:fb:ad:4b:ef:8a:44:06:28: ea:8d:c3:ee:58:c6:00:2d:ea:a8:84:c8:72:95:df: 24:a8:2e:8a:b6:63:f8:c8:57:46:e8:46:a2:6e:33: 44:1e:68:2c:7c:a6:59:99:25:92:16:67:62:20:bc: d5:e3:02:c8:38:d4:24:91:66:b8:90:bc:f3:4b:be: 65:30:4b:f4:22:50:0b:77:33:19:14:9a:97:a7:fb: 68:0a:c6:6c:b9:c3:93:0d:2f:40:83:91:fb:90:75: c5:af:b3:d8:f1:e8:51:b2:7c:82:f2:35:e3:ef:cc: 5e:de:52:ca:b1:9e:ad:03:26:a3:d8:6f:f1:36:68: 23:f5:2e:80:37:a9:e9:10:a9:4f:9c:70:9a:54:37: cf:e6:3e:48:2d:34:3e:0f:c9:14:cc:d8:ff:08:e8: a3:51:da:41:97:bd:82:12:cb:97:88:50:cf:b0:2d: 57:1e:1a:44:9c:24:05:44:a6:5b:89:59:f6:cf:8d: 11:85:df:1b:ed:b4:0e:27:5a:80:97:bb:49:e8:55: 02:8e:ce:28:b3:09:a5:16:05:d5:0f:36:b2:96:75: 7f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:95:F9:7A:73:32:14:5D:92:1D:24:44:07:F2:2B:1B:F1:96:CF:4F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce8258d5-b4bd-4d10-8d83-fd38bcbe161d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.238.44.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:e5:a2:b9:6f:2d:f8:f5:10:ce:2d:4b:a7:80:eb:12:d1:f2: e5:96:bb:63:9a:c2:d1:4a:86:5b:a2:61:dc:1d:35:ba:b7:d8: 7b:30:14:79:9d:30:a8:9e:e9:33:cf:ad:06:a0:87:c1:41:b5: 87:e0:a2:07:48:e0:06:91:31:8b:15:99:09:73:51:0a:be:3a: 0a:38:e0:9f:69:68:dd:a8:85:f6:db:d7:1d:4c:6b:be:14:74: e1:c4:9a:bc:82:1e:fd:e8:c7:10:a1:fd:f3:c1:5c:ac:ae:db: 24:6d:61:de:ff:2c:ef:32:d5:ba:ff:e1:57:ba:b8:13:36:33: dc:97:98:24:4c:2e:3d:38:ff:18:18:b6:40:2e:64:e9:81:87: 92:c1:2c:d5:49:2a:59:4f:a0:9a:64:47:64:21:46:de:54:90: ca:ac:11:0f:c8:5c:83:a9:e6:56:4b:f8:c7:fd:dc:af:48:8b: 6a:91:c8:f9:fe:ea:56:54:9c:0b:99:b5:70:be:6e:a1:02:43: be:4b:a8:9b:46:80:f0:74:e5:a9:dc:e7:e7:fc:77:04:fc:da: c5:7e:79:b0:2b:cc:e7:b6:3a:8b:e4:7d:a2:ca:2a:c7:49:51: 11:44:c9:45:12:77:4c:36:e1:4b:7e:66:14:69:57:f3:ca:24: 39:eb:da:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBhS4IRmsK/XSVagNMTOWTfrsBBwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDQ0MDEzWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzE1MzQ3YThkMDRlYjE3NWZkNDZmY2IzYjQ3ODc2ODY1 YzQyNmE5ZjIwOTEwMjdiNWIwNDcxYzQzNjk3Y2RjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqQjs1YHUiuPoNS3p98qNYJy4pnIYFm/YluXsnrvcaT+DE eq/7rUvvikQGKOqNw+5YxgAt6qiEyHKV3ySoLoq2Y/jIV0boRqJuM0QeaCx8plmZ JZIWZ2IgvNXjAsg41CSRZriQvPNLvmUwS/QiUAt3MxkUmpen+2gKxmy5w5MNL0CD kfuQdcWvs9jx6FGyfILyNePvzF7eUsqxnq0DJqPYb/E2aCP1LoA3qekQqU+ccJpU N8/mPkgtND4PyRTM2P8I6KNR2kGXvYISy5eIUM+wLVceGkScJAVEpluJWfbPjRGF 3xvttA4nWoCXu0noVQKOziizCaUWBdUPNrKWdX8HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwpX5enMyFF2SHSREB/IrG/GWz08wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NlODI1OGQ1LWI0YmQtNGQxMC04ZDgzLWZkMzhiY2JlMTYxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAES7iwwDQYJKoZIhvcNAQELBQADggEBAD7lorlvLfj1EM4tS6eA6xLR8uWW u2OawtFKhluiYdwdNbq32HswFHmdMKie6TPPrQagh8FBtYfgogdI4AaRMYsVmQlz UQq+Ogo44J9paN2ohfbb1x1Ma74UdOHEmryCHv3oxxCh/fPBXKyu2yRtYd7/LO8y 1br/4Ve6uBM2M9yXmCRMLj04/xgYtkAuZOmBh5LBLNVJKllPoJpkR2QhRt5UkMqs EQ/IXIOp5lZL+Mf93K9Ii2qRyPn+6lZUnAuZtXC+bqECQ75LqJtGgPB05anc5+f8 dwT82sV+ebArzOe2OovkfaLKKsdJURFEyUUSd0w24Ut+ZhRpV/PKJDnr2uM= -----END CERTIFICATE-----Generated at Mon Oct 20 02:56:50 2025 by rpki-client